AndrewBarba
commented
6 months ago @Lukasa Thanks so much for the comments earlier. I've since changed quite a bit now that I have a better understanding of whats going on. I was able to create a test that at least ensures the handshake is completing successfully, where as before I was never signaling to the connection that our async lookup was complete. Im sure there's still a lot more testing and error handling we can do but I wanted to pause here and wait for more feedback.
I also want to call out that I'm concerned about this API returning a new NIOSSLContext given how expensive it is to create one. The main purpose of this API would be to serve many dynamic certificates, and at scale if we're constantly creating new contexts could this be a big problem? I'm wondering if a better API is return a new TLSConfiguration struct, and then apply the relevant parts of the configuration instead of swapping the entire context.
Lukasa
This is a first pass at reviving https://github.com/apple/swift-nio-ssl/pull/311 in order to fix https://github.com/apple/swift-nio-ssl/issues/310
Credit to @TechnikEmpire, I did my best to address the comments in the original PR from @Lukasa
If the approach looks okay I'll move to testing